Horizon Cloud on Microsoft Azure has a lot to offer, including bundled licenses for VMware User Environment Manager. This powerful end-user profile management tool provides a wide range of capabilities, such as personalization of Windows and apps, contextual policies for enhanced user experience and privilege elevation to aid in your privilege management strategy. Using Horizon Cloud on Microsoft Azure and User Environment Manager together helps you create a consistent Windows experience for all of your users.

User Environment Manager is flexible enough to run on physical, virtual and cloud-hosted machines. If you are already using User Environment Manager on physical or virtual desktops or Remote Desktop Session Host (RDSH) servers, your knowledge transfers immediately to Horizon Cloud on Microsoft Azure.

The process of deploying Horizon Cloud on Microsoft Azure is simple. The initial deployment automates a download of the Horizon Cloud Node and the VMware Unified Access Gateway appliances to your Azure environment. It also implements the required subnets, and other networking configurations. You can optionally use the included User Environment Manager licenses by installing a new instance or by leveraging an existing instance.

There are many server models available in the Microsoft Azure Marketplace that would work with User Environment Manager. Consider using Dv2, Dv3 or Ev3 series VMs to create file servers for the requisite SMB file shares. Add additional disks to accommodate increased performance demand (input/output operations per second, or IOPS) as needed.

Deployment Options

Customers may use Microsoft Azure to extend their existing data centers in a hybrid-cloud model, or treat it as standalone, public-cloud capacity. Horizon Cloud and User Environment Manager accommodate both configurations.

A common question for multi-site User Environment Manager deployments is whether users from multiple sites can access a single SMB file share instance at the primary data center. While this is possible, there are design considerations to ensure the best user experience.

DirectFlex is a feature of User Environment Manager that reads and writes personalization data as users open and close applications. This feature fetches configuration data only as it is needed instead of reading it completely during logon. This improves the efficiency of the User Environment Manager agent.

DirectFlex will make frequent requests to the SMB file servers hosting the User Environment Manager configuration and user shares. The latency of these requests directly affects the end-user experience. Typically, anything less than 20 milliseconds has no noticeable impact. As latency gets worse, the chance and severity of impact to the user experience increases.

Even a high-performing ExpressRoute may have latency greater than 20 milliseconds, so it is recommended to deploy User Environment Manager in the same Microsoft Azure region as your Horizon Cloud Node.

If the design goal is to have a single User Environment Manager deployment for both on-premises and cloud-hosted VMs, Distributed File System (DFS) replication is recommended. This model provides IT with a single point of administration, while keeping configuration and user data geographically near the VMs accessing the data.

NoAD Mode

User Environment Manager is typically configured and enabled using ADMX templates with Group Policy, and Logon or Logoff Scripts. Version 9.1 introduced an alternative, XML-based option called NoAD Mode. NoAD Mode simplifies administration by eliminating the need to create and manage GPOs. You may use it for on-premises, hybrid-cloud and public-cloud deployments of User Environment Manager.

NoAD Mode benefits you because it is not dependent on Domain Controllers and GPO replication. This makes it ideal for hybrid-cloud or multi-site configurations. While not a requirement, we recommend looking at the NoAD Mode option, especially for hybrid-cloud and public-cloud deployments.